The LibPKI package is aimed to provide a all-in-one PKI handling.
This includes not only digital certificates processing, but also
communication with PKI building blocks (e.g. CA, RA, etc... ) and repository
interaction (e.g. LDAP, HTTP, etc...).
Read More...

Another interesting feature included in the design of LibPKI is to provide a
protocol-independent data retrieval API (e.g. LDAP, HTTP, FTP, FILE, etc...).
Developers can use the libPKI provided data retrieval functions without
the need to know the details about the used protocol implementation.

Cryptography

Easy integration with crypto devices

Part of the libPKI added value is the direct integration with HSMs.
At the moment most cryptographic libraries provide integration
with HSM by using specific functions and drivers.
By introducing the concepts of PKI_TOKEN and PKI_HSM, the
library provides abstraction for usage of HSMs for key operations.
For example this interface enables a software to store private keys in
different devices, e.g. smart cards, usb tokens or TPM.

Profiles and Extensions

XML support for extensions and profile management

To provide even more advanced services to developers, the libPKI implements
XML parsing capabilities.
The XML capabilities will implement both extensions and profile management
(for requests/certs creation and management).